{"id":"https://openalex.org/W4390603564","doi":"https://doi.org/10.1109/access.2024.3350444","title":"Unveiling Vulnerabilities of Web Attacks Considering Man in the Middle Attack and Session Hijacking","display_name":"Unveiling Vulnerabilities of Web Attacks Considering Man in the Middle Attack and Session Hijacking","publication_year":2024,"publication_date":"2024-01-01","ids":{"openalex":"https://openalex.org/W4390603564","doi":"https://doi.org/10.1109/access.2024.3350444"},"language":"en","primary_location":{"id":"doi:10.1109/access.2024.3350444","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3350444","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10381703.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10381703.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5053882756","display_name":"Muteeb Bin Muzammil","orcid":null},"institutions":[{"id":"https://openalex.org/I195024194","display_name":"Riphah International University","ror":"https://ror.org/02kdm5630","country_code":"PK","type":"education","lineage":["https://openalex.org/I195024194"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Muteeb Bin Muzammil","raw_affiliation_strings":["Department of Computing, Riphah International University, Faisalabad Campus, Islamabad, Pakistan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computing, Riphah International University, Faisalabad Campus, Islamabad, Pakistan","institution_ids":["https://openalex.org/I195024194"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029659886","display_name":"Muhammad Bilal","orcid":"https://orcid.org/0000-0002-0915-6138"},"institutions":[{"id":"https://openalex.org/I168879160","display_name":"Zhejiang University of Science and Technology","ror":"https://ror.org/05mx0wr29","country_code":"CN","type":"education","lineage":["https://openalex.org/I168879160"]},{"id":"https://openalex.org/I4210100043","display_name":"Superior University","ror":"https://ror.org/00yh88643","country_code":"PK","type":"education","lineage":["https://openalex.org/I4210100043"]}],"countries":["CN","PK"],"is_corresponding":false,"raw_author_name":"Muhammad Bilal","raw_affiliation_strings":["College of Computer Science and Technology, Zhejiang University, Hangzhou, China","Faculty of Computer Science and Information Technology, Superior University, Lahore, Pakistan"],"raw_orcid":"https://orcid.org/0000-0002-0915-6138","affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Zhejiang University, Hangzhou, China","institution_ids":["https://openalex.org/I168879160"]},{"raw_affiliation_string":"Faculty of Computer Science and Information Technology, Superior University, Lahore, Pakistan","institution_ids":["https://openalex.org/I4210100043"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5003349487","display_name":"Sahar Ajmal","orcid":"https://orcid.org/0000-0002-2096-2325"},"institutions":[{"id":"https://openalex.org/I201384688","display_name":"National University of Computer and Emerging Sciences","ror":"https://ror.org/003eyb898","country_code":"PK","type":"education","lineage":["https://openalex.org/I201384688"]}],"countries":["PK"],"is_corresponding":false,"raw_author_name":"Sahar Ajmal","raw_affiliation_strings":["Department of Software Engineering, FAST School of Computing, National University of Computer and Emerging Sciences, Islamabad, Chiniot-Faisalabad Campus, Chiniot, Pakistan"],"raw_orcid":"https://orcid.org/0000-0002-2096-2325","affiliations":[{"raw_affiliation_string":"Department of Software Engineering, FAST School of Computing, National University of Computer and Emerging Sciences, Islamabad, Chiniot-Faisalabad Campus, Chiniot, Pakistan","institution_ids":["https://openalex.org/I201384688"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009771131","display_name":"Sandile Charles Shongwe","orcid":"https://orcid.org/0000-0003-2243-8196"},"institutions":[{"id":"https://openalex.org/I26999989","display_name":"University of the Free State","ror":"https://ror.org/009xwd568","country_code":"ZA","type":"education","lineage":["https://openalex.org/I26999989"]}],"countries":["ZA"],"is_corresponding":false,"raw_author_name":"Sandile C. Shongwe","raw_affiliation_strings":["Department of Mathematical Statistics and Actuarial Science, Faculty of Natural and Agricultural Sciences, University of the Free State, Bloemfontein, South Africa"],"raw_orcid":"https://orcid.org/0000-0003-2243-8196","affiliations":[{"raw_affiliation_string":"Department of Mathematical Statistics and Actuarial Science, Faculty of Natural and Agricultural Sciences, University of the Free State, Bloemfontein, South Africa","institution_ids":["https://openalex.org/I26999989"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5091859381","display_name":"Yazeed Yasin Ghadi","orcid":"https://orcid.org/0000-0002-7121-495X"},"institutions":[{"id":"https://openalex.org/I161913731","display_name":"Al Ain University","ror":"https://ror.org/023abrt21","country_code":"AE","type":"education","lineage":["https://openalex.org/I161913731"]}],"countries":["AE"],"is_corresponding":false,"raw_author_name":"Yazeed Y. Ghadi","raw_affiliation_strings":["Department of Computer Science/Software Engineering, Al Ain University, Abu Dhabi, United Arab Emirates"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science/Software Engineering, Al Ain University, Abu Dhabi, United Arab Emirates","institution_ids":["https://openalex.org/I161913731"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":12.2186,"has_fulltext":true,"cited_by_count":40,"citation_normalized_percentile":{"value":0.98875398,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"12","issue":null,"first_page":"6365","last_page":"6375"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9976999759674072,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9959999918937683,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/session","display_name":"Session (web analytics)","score":0.8026283979415894},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7566554546356201},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.6802230477333069},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6642257571220398},{"id":"https://openalex.org/keywords/man-in-the-middle-attack","display_name":"Man-in-the-middle attack","score":0.5431671142578125},{"id":"https://openalex.org/keywords/transport-layer-security","display_name":"Transport Layer Security","score":0.49076947569847107},{"id":"https://openalex.org/keywords/domain-name","display_name":"Domain name","score":0.4344109296798706},{"id":"https://openalex.org/keywords/internet-privacy","display_name":"Internet privacy","score":0.38639530539512634},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.3596118688583374},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.12303626537322998}],"concepts":[{"id":"https://openalex.org/C2779182362","wikidata":"https://www.wikidata.org/wiki/Q17126187","display_name":"Session (web analytics)","level":2,"score":0.8026283979415894},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7566554546356201},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.6802230477333069},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6642257571220398},{"id":"https://openalex.org/C196491621","wikidata":"https://www.wikidata.org/wiki/Q554830","display_name":"Man-in-the-middle attack","level":3,"score":0.5431671142578125},{"id":"https://openalex.org/C148176105","wikidata":"https://www.wikidata.org/wiki/Q206494","display_name":"Transport Layer Security","level":3,"score":0.49076947569847107},{"id":"https://openalex.org/C2988987868","wikidata":"https://www.wikidata.org/wiki/Q32635","display_name":"Domain name","level":3,"score":0.4344109296798706},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.38639530539512634},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.3596118688583374},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.12303626537322998}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2024.3350444","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3350444","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10381703.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:d6c524e8bb1e4db1a4a6559524c480de","is_oa":true,"landing_page_url":"https://doaj.org/article/d6c524e8bb1e4db1a4a6559524c480de","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 12, Pp 6365-6375 (2024)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2024.3350444","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2024.3350444","pdf_url":"https://ieeexplore.ieee.org/ielx7/6287639/6514899/10381703.pdf","source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.699999988079071,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320324956","display_name":"University of South Africa","ror":"https://ror.org/048cwvf49"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4390603564.pdf","grobid_xml":"https://content.openalex.org/works/W4390603564.grobid-xml"},"referenced_works_count":52,"referenced_works":["https://openalex.org/W2184984025","https://openalex.org/W2320204756","https://openalex.org/W2395395654","https://openalex.org/W2400965960","https://openalex.org/W2518133083","https://openalex.org/W2536255411","https://openalex.org/W2564838878","https://openalex.org/W2576041901","https://openalex.org/W2729462827","https://openalex.org/W2765151622","https://openalex.org/W2766953468","https://openalex.org/W2792390274","https://openalex.org/W2796848669","https://openalex.org/W2798334860","https://openalex.org/W2808716128","https://openalex.org/W2883502340","https://openalex.org/W2887975290","https://openalex.org/W2891809197","https://openalex.org/W2898746803","https://openalex.org/W2899478841","https://openalex.org/W2904625282","https://openalex.org/W2907195478","https://openalex.org/W2916820289","https://openalex.org/W2953094955","https://openalex.org/W2953649617","https://openalex.org/W2963441158","https://openalex.org/W3038502434","https://openalex.org/W3040838024","https://openalex.org/W3045292544","https://openalex.org/W3047807124","https://openalex.org/W3083556661","https://openalex.org/W3097101678","https://openalex.org/W3119606373","https://openalex.org/W3171004801","https://openalex.org/W3175779610","https://openalex.org/W3189424276","https://openalex.org/W3196589513","https://openalex.org/W3208834529","https://openalex.org/W3209834068","https://openalex.org/W3210329055","https://openalex.org/W3210963392","https://openalex.org/W4200292188","https://openalex.org/W4200482293","https://openalex.org/W4206611612","https://openalex.org/W4226134286","https://openalex.org/W4283215764","https://openalex.org/W4285201849","https://openalex.org/W4317435009","https://openalex.org/W4372082025","https://openalex.org/W4381801980","https://openalex.org/W6726974165","https://openalex.org/W6740954424"],"related_works":["https://openalex.org/W2572573095","https://openalex.org/W2076357705","https://openalex.org/W4385671684","https://openalex.org/W2944340562","https://openalex.org/W2605858460","https://openalex.org/W2801930800","https://openalex.org/W2509010417","https://openalex.org/W2983839871","https://openalex.org/W199411532","https://openalex.org/W2898746803"],"abstract_inverted_index":{"The":[0,70,132,176],"current":[1],"era":[2,215],"extensively":[3],"utilizes":[4],"the":[5,12,51,73,93,113,126,135,171,181,200,213],"Internet,":[6],"which":[7],"uses":[8],"data.":[9],"Due":[10],"to":[11,22,97,187],"apparent":[13],"open-access":[14],"Internet":[15,151,214],"service,":[16],"this":[17,117,120,197],"data":[18,224],"is":[19,26,95,112,125],"highly":[20],"vulnerable":[21],"attacks.":[23,30],"Data":[24],"privacy":[25],"affected":[27],"by":[28,100,140,184,216],"Web-based":[29,39],"This":[31,64,154],"Systematic":[32],"Literature":[33],"Review":[34],"(SLR)":[35],"focuses":[36],"on":[37,146,166],"two":[38],"attacks:":[40],"Man-In-The-Middle":[41,77,141,157,190],"and":[42,79,92,110,143,162,173,192,208,221],"session":[43,80,144,163,193,209],"hijacking.":[44,194],"It":[45,83],"reviews":[46],"about":[47],"30":[48],"studies":[49,186],"from":[50],"years":[52],"2016-2023":[53],"that":[54,85,123,156,169],"have":[55],"been":[56],"selected":[57],"utilizing":[58],"a":[59,130],"proper":[60],"study":[61],"selection":[62],"procedure.":[63],"SLR":[65],"comprises":[66],"three":[67],"research":[68,178],"questions.":[69],"first":[71],"describes":[72],"overall":[74],"trends":[75],"in":[76,90,107,116,212,223],"attacks":[78,138,142,158,165,191],"hijacking":[81,145,164,210],"studies.":[82],"shows":[84],"7":[86],"articles":[87,99,104],"were":[88],"published":[89,106],"2018,":[91],"trend":[94],"decreasing":[96],"4":[98],"2021.":[101],"Moreover,":[102],"73%":[103],"are":[105],"conference":[108],"venues,":[109],"India":[111],"top":[114,127],"contributor":[115,128],"domain.":[118],"Lastly,":[119],"question":[121,179],"elaborated":[122],"IEEE":[124],"as":[129],"publisher.":[131],"second":[133],"addresses":[134],"sorts":[136],"of":[137],"used":[139],"Transmission":[147],"Control":[148],"Protocol":[149,152],"/":[150],"(TCP/IP).":[153],"demonstrates":[155],"invade":[159],"all":[160],"layers":[161],"only":[167],"two,":[168],"is,":[170],"application":[172],"network":[174],"layer.":[175],"third":[177],"discusses":[180],"solutions":[182,222],"provided":[183],"different":[185],"deal":[188],"with":[189],"In":[195],"conclusion,":[196],"analysis":[198],"highlights":[199],"need":[201],"for":[202],"stronger":[203],"cybersecurity":[204],"measures":[205],"against":[206],"Man-in-the-Middle":[207],"assaults":[211],"revealing":[217],"evolving":[218],"trends,":[219],"contributors,":[220],"privacy.":[225]},"counts_by_year":[{"year":2026,"cited_by_count":8},{"year":2025,"cited_by_count":20},{"year":2024,"cited_by_count":12}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}